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Claims 

What is claimed is: 

5 1 . In an electronic device in communication with a network, a method for 
authenticating and authorizing a user, comprising the steps of: 
receiving a user request from a user electronic device; 

determining an identity of said user, wherein said step of determining further 
comprises the steps of: 
1 0 searching for information relating to said user in a repository of user 

information, said searching based at least partially on said user request and a 
login identity supplied by said user; 

retrieving a user identifier representing said user upon locating said 
information of said user; 
1 5 storing at least said user identifier in a data packet; 

sending said data packet to a storage device such that said data packet is 
transmittable to electronic devices in communication with said network when 
said user attempts to access a resource within said network; and 

retrieving an authorization datum associated with said user, based at least 
20 partially on said user identifier, from said resource. 

2. The method of claim 1, wherein said receiving step comprises said user providing a 
login name to said network. 

25 3. The method of claim 1 , wherein prior to said searching step, said method further 
comprising the steps of: 

registering said user with said network; 
generating said user identifier relating to said user; 
inserting said user identifier in said repository of user information; and 
30 populating a plurality of repositories containing authorization data with said user 

identifier. 

4. The method of claim 1, further comprising the step of said user providing a security 
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identity. 

5. The method of claim 1 , further comprising the step of said user providing a digital 
certificate. 

5 

6. The method of claim 1, wherein said determining step further comprises indicating a 
result to said user regarding permitted access to said network. 

7. The method of claim 1, wherein said determining step further comprises requesting a 
1 0 user credential of said user. 

8. The method of claim 1, wherein said sending step further comprises sending said 
data packet to a user electronic device supporting said storage device. 

1 5 9. The method of claim 1 , further comprising the step of storing information in addition 
to said user identifier in said data packet. 

10. The method of claim 1, wherein said sending step comprises transmitting a cookie 
to said user electronic device enabling an identity of said user to be automatically 

20 recognized when said cookie is transmitted to said resource within said network. 

1 1 . The method of claim 1 , further comprising the step of encrypting said data packet. 

12. In an electronic device in communication with a network, a method for a user to 
25 access a plurality of resources having different authorization requirements, the method 

comprising: 

said network storing a plurality of user identifiers with said plurality of 
resources; 

said user accessing said network via a user electronic device; 
30 said user providing identifying data to said network; 

said network retrieving a unique user identifier for said user in a repository of 
unique user identifiers; 

said network storing said unique user identifier on a storage device, said unique 
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user identifier indicating said user is authenticated; 

said user accessing one of said plurality of resources, wherein said unique user 
identifier is transmitted to said one of said plurality of resources to identify said user 
such that said user can access authorized resources without providing additional 
identifying information and said user is denied access to unauthorized resources. 

13. The method of claim 12, further comprising said unique user identifier providing a 
key to retrieve an authorization datum associated with one of said plurality of user 
identifiers matching said unique user identifier from one of said plurality of resources. 

14. The method of claim 12, wherein prior to said step of storing said plurality of user 
identifiers, said method further comprising the steps of: 

said user registering with said network; 

said network generating said unique user identifier for said user; and 
said network inserting said unique user identifier in at least one of said plurality 
of user identifiers. 

15. The method of claim 12, wherein said proving step comprises said user supplying at 
least one of a login name, a password, and a digital certificate. 

16. The method of claim 12, wherein prior to said storing said unique user identifier 
step, said method further comprising said user providing credentials. 

17. The method of claim 16, wherein prior to said storing said unique user identifier 
step, said method further comprising said user providing a digital certificate. 

1 8. A method implemented by at least one electronic device for authentication and 
authorization using a user identifier to retrieve user data, the method comprising the 
steps of: 

accessing a repository containing a plurality of user identifiers; 
retrieving said user identifier from said repository, said user identifier being 
unique to a user; 

storing said user identifier in a data packet readable by an electronic device; 
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transmitting said data packet to a storage device coupled to said electronic 
device; and 

making said data packet available to a resource configured within an enterprise 
network to authorize said user. 

19. The method of claim 1 8, wherein said step of storing comprises packaging said user 
identifier in a cookie suitable for storage on at least one of a user electronic device and a 
user proxy electronic device. 

20. The method of claim 19, further comprising the step of a software program 
employed to access a network reading said storage device. 

21 . The method of claim 19, further comprising the step of a web browser employed to 
access a network reading said storage device. 

22. The method of claim 1 8, further comprising the steps of: 

delivering said data packet to said resource configured within said enterprise 
network; 

extracting said user identifier from said data packet; 

accessing a repository containing a plurality of user entitlement data; and 

retrieving a user-specific entitlement from said repository containing said 

plurality of user entitlement data using said user identifier to locate said user-specific 

entitlement. 

23. A network of electronic devices suitable for implementing a method for 
authentication and authorization using a user identifier to retrieve user data, said 
network of electronic devices comprising: 

a repository containing a plurality of user identifiers, each user identifier being 
unique to a user and said repository being in communication with said network; 

a first software tool suitable for receiving user login information, accessing said 
repository, locating a user identifier relating to said user, and transmitting any such user 
identifier to an electronic storage device suitable for storing said user identifier in a data 
packet for transmission to resources within said network; 
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a user electronic device suitable for communication with said network; and 
a second software tool suitable for receiving said data packet and locating 
authorization datum of said user. 

24. The network of electronic devices according to claim 23, wherein said electronic 
storage device is readable by a software program suitable for accessing said network. 

25. The network of electronic devices according to claim 24, wherein said software 
program is a web browser. 

26. The network of electronic devices according to claim 23, wherein said electronic 
storage device is a resource configured within said network. 

27. The network of electronic devices according to claim 23, further comprising a 
repository containing authorization data, said repository accessible using said user 
identifier as a key to retrieve a user-specific entitlement associated with said user. 

28. A computer readable medium containing a software program for executing a 
method for authenticating and authorizing a user, said method comprising the steps of: 

receiving a user request from a user electronic device; 

determining an identity of said user, wherein said step of determining further 
comprises the steps of: 

searching for information of said user in an authentication database; 

locating said user credential in reference to said user in said 
authentication database; 

retrieving a universal identifier representing said user upon locating said 
user credential in reference to said user; 

packaging at least said universal identifier in a data packet; and 

transmitting said data packet to a user electronic device such that said 
data packet is transmittable to electronic devices in communication with a 
network when said user attempts to access a resource within said network such 
that said user can access authorized resources without providing additional 
identifying information. 
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29. The computer readable medium of claim 28, wherein the method executed by the 
software program further comprises the steps of: 

transmitting said data packet to said resource within said network; 
5 accessing a repository containing a plurality of user identifiers using said 

universal identifier in a search operation; and 

retrieving a user-specific entitlement from said repository containing a plurality 
of user identifiers, said user-specific entitlement associated with said universal 
identifier. 

0 

30. The computer readable medium of claim 28, wherein the method executed by the 
software program further comprises the step of requesting a user credential. 



